Data collection and Healthcare - Cyber Security Informer

Web 3.0 Requires Data Integrity

Schneier on Security

APRIL 3, 2025

This enables the implementation of defense-in-depth strategies—from cryptographic verification of training data to robust model architectures to interpretable outputs. We must ensure integrity and reliability at every level of the stack. In the future, we will need the same assurances for integrity.

Architecture

Architecture Artificial Intelligence Internet Internet

IT threat evolution Q3 2024

SecureList

NOVEMBER 29, 2024

CloudSorcerer is a sophisticated cyber-espionage tool used for stealth monitoring, data collection and exfiltration via Microsoft, Yandex and Dropbox cloud infrastructures. The data collected about the targets’ companies and contact information could be used to spy on people of interest and lay the groundwork for future attacks.

Energy and Utilities

Energy and Utilities Ransomware Malware Government

The Role of Differential Privacy in Protecting Sensitive Information in the Era of Artificial Intelligence

Security Affairs

MARCH 7, 2025

This article uses differential privacy in healthcare, finance, and government data analytics to explore the mathematical foundation, implementation strategies, and real-world applications of differential privacy. According to Erlingsson (2014), Google’s RAPPOR system collects user data while maintaining anonymity.

Artificial Intelligence

Artificial Intelligence Healthcare Data privacy Banking

Inside the DemandScience by Pure Incubation Data Breach

Troy Hunt

NOVEMBER 13, 2024

Apparently, before a child reaches the age of 13, advertisers will have gathered more 72 million data points on them. I knew I'd seen a metric about this sometime recently, so I went looking for "7,000", which perfectly illustrates how unaware we are of the extent of data collection on all of us.

Data breaches

Data breaches Passwords B2B Technology

How boards can manage digital governance in the age of AI

BH Consulting

MARCH 26, 2025

This focuses on cybersecurity risk management and incident reporting for essential sectors like healthcare and energy. Other frameworks that boards need to be aware of, include the newly introduced NIS2 Directive. Organisations can use certifications and standards to guide them on their governance journey.

Government

Government Artificial Intelligence Risk Digital transformation

The SOC files: Rumble in the jungle or APT41’s new target in Africa

SecureList

JULY 21, 2025

This is a Chinese-speaking cyberespionage group known for targeting organizations across multiple sectors, including telecom and energy providers, educational institutions, healthcare organizations and IT energy companies in at least 42 countries. Data gathered by these utilities was also exfiltrated via the compromised SharePoint server.

Energy and Utilities

Energy and Utilities Accountability Data collection Encryption

ICFR Best Practices: How to Design and Maintain Strong Financial Controls

Centraleyes

APRIL 17, 2025

To ensure that internal controls are properly structured, financial institutions, publicly traded companies, healthcare organizations, and even government agencies turn to established frameworksand one of the most widely recognized is the COSO Framework. Accurate Data Collection: Use reliable systems to collect financial data.

Risk

Risk Technology Accountability Cybersecurity

5 Best Practices for Data Privacy Compliance

Centraleyes

OCTOBER 28, 2024

Data minimization ensures you’re not collecting unnecessary or excessive personal information, which can also improve customer trust. Data Minimization Best Practices: Limit Data Collection : Only collect personal data that is essential for its specific purpose.

Data privacy

Data privacy Encryption Risk Data breaches

The Best 15 Enterprise Compliance Solutions Tools of 2024

Centraleyes

DECEMBER 1, 2024

Your enterprise compliance tools should address the specific regulatory needs of your industry—whether it’s financial services, healthcare, manufacturing, or technology. HighBond by Diligent HighBond consolidates audit, compliance, risk, and security management into a single platform, with real-time data collection and reporting.

Risk

Risk B2B Data privacy B2C

Security Affairs newsletter Round 509 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 2, 2025

CISA adds Apple products’ flaw to its Known Exploited Vulnerabilities catalog Aquabot variant v3 targets Mitel SIP phones Critical remote code execution bug found in Cacti framework Attackers actively exploit a critical zero-day in Zyxel CPE Series devices Attackers exploit SimpleHelp RMM Software flaws for initial access VMware fixed a flaw (..)

Data breaches

Data breaches Cybercrime Healthcare Hacking

The State of Digital Trust in 2025 - Consumers Still Shoulder the Responsibility

Thales Cloud Protection & Licensing

MARCH 19, 2025

While insurers benefit from regulatory oversight like the banking sector, persistent friction points like opaque claims processes and intrusive data collection eroded goodwill. Highly regulated industries like healthcare and banking fared better but still faced skepticism, particularly in the U.S.,

Insurance

Insurance Banking Authentication Data privacy

US government wants health trackers for all? What it means for your health, privacy, and wallet

Zero Day

JUNE 26, 2025

Here's which one I recommend most If the campaign for widespread adoption of wearables succeeds, the impacts could be fundamental to this new era of tech-infused healthcare. Also: I took these four sleep trackers to bed. Here's how this adoption could impact you.

Government

Government Password Management Small Business Artificial Intelligence

Healthcare – Patient or Perpetrator? – The Cybercriminals Within

Security Affairs

NOVEMBER 8, 2021

The healthcare industry might be known for the work it does to treat patients. With copious amounts of data collected by healthcare facilities, cybercriminals often target such entities. Moreover, the healthcare industry collects unique data, known as Protected Health Information (PHI), which is extremely valuable.

Healthcare

Healthcare Identity Theft Digital transformation Data collection

App cyberattacks jump 137%, with healthcare, manufacturing hit hard, Akamai says

CSO Magazine

APRIL 18, 2023

An analysis of customer data collected by content delivery network and internet services giant Akamai found that attacks targeting web applications rose by 137% over the course of last year, as the healthcare and manufacturing sectors in particular were targeted with an array of API and application-based intrusions.

Manufacturing

Manufacturing Healthcare Data collection Internet

Addressing the Unique Obstacles in Healthcare Through Policy-Based Access Control

CyberSecurity Insiders

OCTOBER 19, 2022

In particular, the need for smart technology that manages who can access what and when is at high demand within the healthcare industry. This balancing act often leaves healthcare providers with a series of obstacles during critical circumstances. Data’s Lifetime Impact. Consumer Expectations.

Healthcare

Healthcare Data collection Data privacy Technology

COVID-19 Vaccination Management Problems Have Created a Privacy Nightmare For Americans – Even Without Vaccine Passports

Joseph Steinberg

APRIL 20, 2021

It is also not uncommon for firms in the healthcare vertical to symbiotically share various types of information with one another; private healthcare-related data is also almost always shared during the M&A process – even before deals have closed.

Healthcare

Healthcare Insurance Computers and Electronics Data collection

How we can secure the future of healthcare and telemedicine

CyberSecurity Insiders

MAY 14, 2021

It is no secret that healthcare systems around the globe are facing unprecedented challenges. Beyond the obvious spectre of the pandemic, health services need to provide a growing, increasingly elderly, population, with quality healthcare despite rising costs. How healthcare has transformed during the pandemic.

Healthcare

Healthcare IoT Technology Data collection

IoT Devices and HIPAA Compliance: 6 Things Healthcare Orgs Must Know

SecureWorld News

JUNE 14, 2022

This is particularly true within healthcare environments where IoT is also increasingly used, and where HIPAA compliance must also be addressed when IoT products are used by covered entities (CEs) and their business associates (BAs). Medical data was taken in 22% of breaches caused by insiders, mostly within healthcare providers.

IoT

IoT Healthcare Risk Firmware

One of my favorite smart ring makers just launched its blood testing platform - but it's not cheap

Zero Day

JULY 15, 2025

Wearable companies on a healthcare kick Collaboration between medical facilities and wearable brands, such as Ultrahuman, is a common trend in the health technology field. Advanced Labs incorporates the data collected through the Whoop MG for further data interpretation by a clinician.

Healthcare

Healthcare Artificial Intelligence Digital transformation Password Management

GUEST ESSAY: Threat hunters adapt personas, leverage AI to gather intel in the Dark Web

The Last Watchdog

JUNE 20, 2022

Data collections released after ransomware attacks. Ransomware attacks hit indiscriminately across business categories, from private corporations to government agencies, including schools and universities, hospitals and healthcare providers, financial institutions, and everything in between.

Ransomware

Ransomware Marketing Data collection Healthcare

BORN Ontario data breach impacted 3.4 million newborns and pregnancy care patients

Security Affairs

SEPTEMBER 26, 2023

The Better Outcomes Registry & Network (BORN) is a program and database used in the healthcare sector, particularly in maternal and child health, to collect, manage, and analyze health information for the purpose of improving patient outcomes and healthcare services. million people. .

Data breaches

Data breaches Healthcare Ransomware Hacking

Kaiser Permanente Discloses Data Breach Impacting 13.4 Million People

SecureWorld News

APRIL 29, 2024

While Kaiser has not provided many specifics about the nature of the cybersecurity incident, the company stated that the compromised data included individuals' names, addresses, email addresses, and may have also included medical information and health record numbers depending on the person. in terms of the number of people impacted.

Data breaches

Data breaches Healthcare Identity Theft Advertising

CIRWA Project tracks ransomware attacks on critical infrastructure

Security Affairs

SEPTEMBER 14, 2020

According to the summary findings related to the period 2013-2020, the most targeted critical infrastructures are government facilities, followed by education and healthcare. Data collected by the researchers are very interesting and very useful for future research projects on the security of the critical infrastructure.

Ransomware

Ransomware Data collection Advertising Healthcare

Operation Blacksmith: Lazarus exploits Log4j flaws to deploy DLang malware

Security Affairs

DECEMBER 12, 2023

Additionally, Andariel has been involved in ransomware attacks against healthcare organizations in certain instances. Andariel, for instance, handles initial access, reconnaissance, and establishing long-term access for cyber espionage campaigns. HazyLoad has been delivered through a third DLang malware called BottomLoader. .

Malware

Malware Data collection Manufacturing Healthcare

Access Management is Essential for Strengthening OT Security

Thales Cloud Protection & Licensing

MAY 23, 2022

Although the attack against Colonial Pipeline deservedly gained news attention, ransomware attacks have increasingly disrupted the sectors of food, healthcare and transportation. Healthcare sector. The alert detailed cyber threats which can lead to ransomware, data theft and disruption of healthcare services.

Healthcare

Healthcare Ransomware Authentication Threat Reports

Are Fake COVID Testing Sites Harvesting Data?

Schneier on Security

JANUARY 19, 2022

Speculation centered around data harvesting, but that didn’t make sense because it was far too labor intensive for that and — sorry to break it to you — your data isn’t worth all that much. Over the past few weeks, I’ve seen a bunch of writing about what seems to be fake COVID-19 testing sites.

Insurance

Insurance Marketing Government Software

MY TAKE: Why monetizing data lakes will require applying ‘attribute-based’ access rules to encryption

The Last Watchdog

JUNE 2, 2021

We’ve barely scratched the surface of applying artificial intelligence and advanced data analytics to the raw data collecting in these gargantuan cloud-storage structures erected by Amazon, Microsoft and Google. But it’s coming, in the form of driverless cars, climate-restoring infrastructure and next-gen healthcare technology.

Encryption

Encryption Artificial Intelligence IoT Data collection

NIST Report Highlights Rising Tide of Threats Facing AI Systems

SecureWorld News

JANUARY 17, 2024

Artificial intelligence (AI) promises to transform major sectors like healthcare, transportation, finance, and government over the coming years. But the advanced machine learning (ML) models powering this AI revolution also introduce new vectors of attack for malicious actors. As adoption accelerates, so too do emerging cybersecurity risks.

Artificial Intelligence

Artificial Intelligence Data collection Architecture Healthcare

Power Generator in South Africa hit with DroxiDat and Cobalt Strike

Security Affairs

AUGUST 11, 2023

” reads the report published by Data collected related to multiple incidents analyzed by Kaspersky suggest the attack was conducted by the Russian-speaking RaaS cybercrime Pistachio Tempest or FIN12. The group focuses on healthcare industry and frequently used SystemBC alongside CS Beacon to deploy ransomware.

Malware

Malware Data collection Healthcare Cybercrime

2024 Cybersecurity Laws & Regulations

eSecurity Planet

SEPTEMBER 21, 2024

HIPAA mandates that healthcare providers, insurers, and business associates implement robust security measures to safeguard patient data. HIPAA also requires organizations to conduct regular risk assessments and report data breaches.

Cybersecurity

Cybersecurity Computers and Electronics Cyber threats Healthcare

What is progressive profiling and how can it benefit your business?

Thales Cloud Protection & Licensing

JULY 3, 2023

madhav Tue, 07/04/2023 - 05:10 As the data trust gap between customers and businesses continue to grow, and as third-party cookies become redundant, there is an urgency to adopt a modernized approach to customer data collection. Progressive profiling introduces a fresher and far more proactive take on data collection.

Data collection

Data collection B2C B2B Insurance

Number of hacktivist attacks declined by 95 percent since 2015

Security Affairs

MAY 18, 2019

Even if in Italy the cells of the popular Anonymous collective are very active , the overall number of hacktivist attacks that caused in quantifiable damage to the victim has declined by 95 percent since 2015. Researchers analyzed data collected by IBM’s X-Force threat intelligence unit between 2015 and 2019.

Advertising

Advertising Data collection DDOS Healthcare

Human-AI Teaming in the Age of Collaborative Intelligence

SecureWorld News

NOVEMBER 26, 2024

This partnership is unlocking new possibilities across fields such as healthcare, engineering, cybersecurity, and beyond. This integration of human effort and AI capability is transforming citizen science into a form of collective intelligence, where creativity and precision converge. Transparency and trust are major hurdles.

Government

Government Healthcare Artificial Intelligence Technology

Privacy predictions for 2021

SecureList

JANUARY 28, 2021

Add in more smart health devices, such as smart body scales, glucose level monitors, blood pressure monitors and even toothbrushes and you have huge amounts of data that is invaluable for marketers and insurers. Public awareness of the perils of unfettered data collection is growing, and the free market is taking notice.

Marketing

Marketing Data collection Government Encryption

Oregon Consumer Privacy Act (OCPA)

Centraleyes

NOVEMBER 7, 2024

The law is particularly relevant for businesses across various sectors—such as retail, finance, technology, and healthcare—that handle consumer data on a large scale. With OCPA’s protections, consumers can enjoy improved data privacy while businesses gain a structured approach to handling data responsibly.

Data collection

Data collection Data breaches Data privacy Risk

Best Fraud Management Systems & Detection Tools in 2022

eSecurity Planet

SEPTEMBER 16, 2022

The healthcare industry is a similarly high-value target thanks to the incredibly sensitive personal details they keep on patients and customers. According to a report by the United States Sentencing Commission, the median loss of healthcare fraud in 2021 was over $1 million per infraction. Though powerful, the system isn’t perfect.

eCommerce

eCommerce Risk Financial Services Authentication

Data Privacy Day: Three ways to keep consumer data secure

CyberSecurity Insiders

MARCH 14, 2021

We know that t he turbulent events of 2020 , for example, created numerous challenges and gaps with regards to data protection, which must be remedied in 2021. It is easy to request customers to input a variety of data into a system. Privacy Shield ) will have on their business. .

Data privacy

Data privacy Data breaches Data collection Healthcare

Top VC Firms in Cybersecurity of 2022

eSecurity Planet

APRIL 26, 2022

Specializing in seed and Series A opportunities, the San Francisco-based firm has an extensive consumer, enterprise, and healthcare investments portfolio. Insight’s portfolio goes beyond cybersecurity, serving IT verticals in data, fintech, healthcare, and logistics. New Enterprise Associates (NEA). Redpoint Ventures.

Cybersecurity

Cybersecurity Technology Marketing Healthcare

Colorado Privacy Act (CPA)

Centraleyes

JUNE 4, 2024

The law is relevant to a wide range of industries including but not limited to: Technology Retail Finance Healthcare Marketing and advertising Any business involved in data collection, processing, and monetization Who Needs to Comply? The CPA mandates compliance from both data controllers and processors.

Data collection

Data collection Advertising Risk Data privacy

Knock, Knock; Who’s There? – IoT Device Identification & Data Integrity Is No Joke

Thales Cloud Protection & Licensing

JULY 12, 2018

They all must have unique identifiers and the ability to collect and transfer data over networks to enable monitoring, surveillance, and execution of decisions based on the collected data with little or no human intervention. But making the IoT work requires trust in the devices and the data they collect.

IoT

IoT Data collection Encryption eCommerce

MIT Report Spotlights Triple Threat Fueling Data Breach Tsunami

SecureWorld News

JUNE 4, 2024

Recent years have seen numerous major breaches originate from software supply chain compromises, such as the SolarWinds hack , and from vulnerabilities in vendor payroll or billing systems, such as the Change Healthcare breach. Infostealer attacks are on the rise, focusing on data collection rather than just hiding data behind encryption.

Data breaches

Data breaches Social Engineering Ransomware Backups

Navigating GDPR Compliance with CIAM: A Quick Guide

Thales Cloud Protection & Licensing

MAY 22, 2024

The GDPR's new requirements necessitated a fundamental overhaul of CIAM approaches, a relevance that persists today: Key GDPR principles reshaping CIAM Explicit Consent : Before collecting data, businesses should obtain clear and affirmative consent from users. Explicit consent is required for such data.

Data collection

Data collection Data privacy Encryption Authentication

A Pandora's Box: Unpacking 5 Risks in Generative AI

Thales Cloud Protection & Licensing

APRIL 17, 2024

Data poisoning involves injecting malicious inputs into training datasets, corrupting the learning process, and compromising the model's performance. This tactic can manipulate outcomes, undermine decision-making processes, and even lead to catastrophic consequences in critical applications like healthcare or finance.

Risk

Risk Data collection Artificial Intelligence Accountability

A Pandora’s Box: Unpacking 5 Risks in Generative AI

Security Boulevard

APRIL 17, 2024

Data poisoning involves injecting malicious inputs into training datasets, corrupting the learning process, and compromising the model's performance. This tactic can manipulate outcomes, undermine decision-making processes, and even lead to catastrophic consequences in critical applications like healthcare or finance.

Risk

Risk Data collection Artificial Intelligence Accountability

Web 3.0 Requires Data Integrity

IT threat evolution Q3 2024

Trending Sources

The Role of Differential Privacy in Protecting Sensitive Information in the Era of Artificial Intelligence

Inside the DemandScience by Pure Incubation Data Breach

How boards can manage digital governance in the age of AI

The SOC files: Rumble in the jungle or APT41’s new target in Africa

ICFR Best Practices: How to Design and Maintain Strong Financial Controls

5 Best Practices for Data Privacy Compliance

The Best 15 Enterprise Compliance Solutions Tools of 2024

Security Affairs newsletter Round 509 by Pierluigi Paganini – INTERNATIONAL EDITION

The State of Digital Trust in 2025 - Consumers Still Shoulder the Responsibility

US government wants health trackers for all? What it means for your health, privacy, and wallet

Healthcare – Patient or Perpetrator? – The Cybercriminals Within

App cyberattacks jump 137%, with healthcare, manufacturing hit hard, Akamai says

Addressing the Unique Obstacles in Healthcare Through Policy-Based Access Control

COVID-19 Vaccination Management Problems Have Created a Privacy Nightmare For Americans – Even Without Vaccine Passports

How we can secure the future of healthcare and telemedicine

IoT Devices and HIPAA Compliance: 6 Things Healthcare Orgs Must Know

One of my favorite smart ring makers just launched its blood testing platform - but it's not cheap

GUEST ESSAY: Threat hunters adapt personas, leverage AI to gather intel in the Dark Web

BORN Ontario data breach impacted 3.4 million newborns and pregnancy care patients

Kaiser Permanente Discloses Data Breach Impacting 13.4 Million People

CIRWA Project tracks ransomware attacks on critical infrastructure

Operation Blacksmith: Lazarus exploits Log4j flaws to deploy DLang malware

Access Management is Essential for Strengthening OT Security

Are Fake COVID Testing Sites Harvesting Data?

MY TAKE: Why monetizing data lakes will require applying ‘attribute-based’ access rules to encryption

NIST Report Highlights Rising Tide of Threats Facing AI Systems

Power Generator in South Africa hit with DroxiDat and Cobalt Strike

2024 Cybersecurity Laws & Regulations

What is progressive profiling and how can it benefit your business?

Number of hacktivist attacks declined by 95 percent since 2015

Human-AI Teaming in the Age of Collaborative Intelligence

Privacy predictions for 2021

Oregon Consumer Privacy Act (OCPA)

Best Fraud Management Systems & Detection Tools in 2022

Data Privacy Day: Three ways to keep consumer data secure

Top VC Firms in Cybersecurity of 2022

Colorado Privacy Act (CPA)

Knock, Knock; Who’s There? – IoT Device Identification & Data Integrity Is No Joke

MIT Report Spotlights Triple Threat Fueling Data Breach Tsunami

Navigating GDPR Compliance with CIAM: A Quick Guide

A Pandora's Box: Unpacking 5 Risks in Generative AI

A Pandora’s Box: Unpacking 5 Risks in Generative AI

Stay Connected